Microsoft is preparing new tools for Windows 11 that will allow security vendors to work outside the system kernel. The company is working on new features to prevent a repeat of the CrowdStrike situation, which caused a failure of more than 8.5 million computers worldwide. This was reported by The Verge.
The company hosted a security summit to which it invited various security vendors, including CrowdStrike, to discuss potential means of preventing such incidents. Microsoft said it “discussed the requirements and key challenges in creating a new platform that can meet the needs of security providers.”
“Both our customers and ecosystem partners have called on Microsoft to provide additional security capabilities outside of kernel mode which, along with safe deployment practices, can be used to create highly available security solutions,” said David Weston, vice president of enterprise and OS security at Microsoft.
Although the tech giant does not directly say that it will restrict access to the kernel for security vendors, the companies did discuss performance needs and challenges for working outside the kernel, as well as the need for tamper-proofing for security products and requirements for security sensors.
Earlier, there were reports that the company was considering blocking access to the kernel after the CrowdStrike disruption. Now it is reported that Microsoft is in the early stages of developing a platform that will allow security vendors to operate outside the Windows kernel.
Loading comments …